In Other News: Disney Ditches Slack, Binance Malware Warning, Defense Conference Targeted

September 20, 2024 at 08:51AM SecurityWeek’s roundup presents noteworthy cybersecurity stories that may have gone unnoticed. This week’s highlights include settlements for data breaches at 23andMe and Disney, a warning about cryptocurrency transfer hijacking, findings from CISA’s assessments, a targeted attack on a US-Taiwan conference, Salesforce’s vulnerability, Rockwell Automation’s patches, North Korean fake employees at … Read more

About the security content of tvOS 17.4 – Apple Support

March 7, 2024 at 01:51PM Summary: Apple TV HD and Apple TV 4K have updates available to address numerous security vulnerabilities. The issues include privacy, elevation of privileges, access restrictions, memory handling, and logic issues. Affected products range from accessibility notifications to web content, with potential impacts on user data, system integrity, and elevated code … Read more

About the security content of watchOS 10.4 – Apple Support

March 7, 2024 at 01:51PM Apple released a security update to address multiple vulnerabilities in various products, including CoreBluetooth, ImageIO, Kernel, libxpc, MediaRemote, Messages, RTKit, Sandbox, Share Sheet, Siri, UIKit, WebKit. The update is available for Apple Watch Series 4 and later. These vulnerabilities may allow various exploits, including access to sensitive user data and … Read more

About the security content of tvOS 17.3 – Apple Support

January 22, 2024 at 01:42PM Summary: Apple has released updates addressing multiple security vulnerabilities impacting products such as Apple Neural Engine, CoreCrypto, Kernel, NSSpellChecker, TCC, Time Zone, and WebKit. These vulnerabilities could potentially lead to arbitrary code execution, unauthorized access to sensitive data, and other security risks. From the provided meeting notes, it is clear … Read more

About the security content of macOS Monterey 12.7.3 – Apple Support

January 22, 2024 at 01:42PM The Apple ID HT214057 released on 2024-01-22 addresses several CVEs for macOS Monterey, including a privacy issue with improved data redaction, a memory handling improvement, and updates for multiple issues in curl, ImageIO, Mail Search, and WebKit. These updates mitigate potential risks of app access to sensitive data and arbitrary … Read more

About the security content of iOS 17.3 and iPadOS 17.3 – Apple Support

January 22, 2024 at 01:42PM Summary: Multiple CVEs are addressed, including memory handling, timing side-channel issues, redaction of sensitive information, and improved handling of files. Updates are available for various products, such as Apple Neural Engine, CoreCrypto, Kernel, Mail Search, NSSpellChecker, etc., impacting devices like iPhone XS and later, iPad Pro, and more. From the … Read more

About the security content of iOS 16.7.5 and iPadOS 16.7.5 – Apple Support

January 22, 2024 at 01:42PM Summary: – Apple released updates addressing multiple CVE issues including privacy, memory handling, and access risks affecting various products like Accessibility, Apple Neural Engine, curl, ImageIO, Safari, and WebKit for specific devices. The updates aim to mitigate potential user data exposure, arbitrary code execution, and web content vulnerabilities. From the … Read more

About the security content of iOS 16.7.3 and iPadOS 16.7.3 – Apple Support

December 11, 2023 at 01:45PM Several security vulnerabilities have been addressed in Apple’s products, including issues with sensitive data redaction, memory handling, and potential code execution. Demonstrating a wide-reaching impact, vulnerabilities affect various products such as Accounts, AVEVideoEncoder, Find My, ImageIO, Kernel, and WebKit for specific Apple devices. Updates are available for relevant device models. … Read more

About the security content of macOS Ventura 13.6.3 – Apple Support

December 11, 2023 at 01:45PM Summary: Apple has addressed various security issues with improved redaction, memory handling, and logic checks in macOS Ventura. The updates aim to prevent unauthorized access to sensitive user data across products like Accounts, AppleEvents, CoreServices, and more. Additionally, upgrades for specific applications like Vim and ncurses are available to mitigate … Read more

About the security content of watchOS 10.2 – Apple Support

December 11, 2023 at 01:45PM Several privacy and security issues were addressed in the release of Apple’s software update, including improved data redaction, memory handling, and input validation. These updates apply to various products and address potential impacts such as unauthorized access to sensitive data, arbitrary code execution, and denial-of-service. Update is available for Apple … Read more